Reply
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Local RPZ VS CSP
Options
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-10-2023 02:14 AM
1455     0
i added a suspicious domain to a local block list RPZ on my local DNS. However, my local DNS is forwarding quries to the CSP, when i check CSP, istill see that blocked domain in the logs, even though it's supposed to be blocked on my on-premises DNS. i am wondering why the CSP is receiving the query for that domain if it's blocked.
Labels:
Re: Local RPZ VS CSP
Options
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-15-2024 07:22 AM
1455     0
Can you validate your RPZ setting is not in log-only mode? https://docs.infoblox.com/space/nios90/280760177/Configuring+Local+RPZs
Also are you using NIOS Grid Connector (NGC) to forward logs?
nic(at)infoblox.com